I was talking more about real-time transparency when there are cyber attacks. However, your answer does lead me to another question.
In some cases, there seems to be a duplication of work when a declassification request is processed. One department will declassify the document, and another department will not. So energy and time seem to be wasted.
Would it not be a good idea to create a declassification centre, rather than just having broad guidelines that do not seem to be applied in the same way from one department to another?